Trend analysis papers
From: dodo (ro_dodo_at_hotmail.com)
Date: 07/01/03
- Previous message: Anton A. Chuvakin: "Re: Anyone else using Argus for monitoring?"
- Next in thread: Omar Herrera: "RE: Trend analysis papers"
- Reply: Omar Herrera: "RE: Trend analysis papers"
- Reply: Nawapong Nakjang`: "RE: Trend analysis papers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <focus-ids@securityfocus.com> Date: Tue, 1 Jul 2003 11:15:01 +0300
Hello,
I'm doing a research about Intrusion detection and I'm trying to make an
analysis according to some log files (snort). Now, I'm not sure what are the
parameters that might effect (correlate) each other.
Moreover, I know that this problem is not a simple one due to the fact that
my log is full with false-positive alert. I tried to find in sans reading
room and securityfocus but there is no article about this issue.
Any comments/reference/full answers will be most appreciated.
Thanks a lot,
Ido.
-------------------------------------------------------------------------------
The Lightning Console aggregates IDS events, correlates them with vulnerability
info, reduces false positives with the click of a button, and distributes this
information to hundreds of users.
Visit Tenable Network Security at http://www.tenablesecurity.com to learn more.
-------------------------------------------------------------------------------
- Previous message: Anton A. Chuvakin: "Re: Anyone else using Argus for monitoring?"
- Next in thread: Omar Herrera: "RE: Trend analysis papers"
- Reply: Omar Herrera: "RE: Trend analysis papers"
- Reply: Nawapong Nakjang`: "RE: Trend analysis papers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
